If you just generally don't like your ISP seeing what you do/ don't want anyone between you and who you're talking to listening in on the conversation you might as well use HTTPS. There's not much performance hit and if a site supports it I think we can assume that they can handle the extra load.

Why isn't it on official FF addon page? And does it send our data to their developers somehow?

Click to expand...

Good question Pandorax, I wondered the same thing, so I found this on their FAQ:

"Q. Why isn't HTTPS Everywhere available for download from addons.mozilla.org like most other Firefox add-ons?

A. We felt that the Mozilla privacy policy that applies to downloads from addons.mozilla.org is somewhat less protective than the privacy policies of the organizations that develop HTTPS Everywhere, and we prefer for HTTPS Everywhere users to be protected by our privacy policy. This decision could change in the future as Mozilla's privacy practices evolve or as we re-examine the details of the current Mozilla policy."

If you enable the Decentralized Observatory feature of HTTPS Everywhere, we analyze and publish the copies of the certificates of SSL/TLS servers that you connect to. These certificates generally do not identify you and we will take reasonable steps to try to avoid collecting certificates that may be used to identify you.

Click to expand...

Whatever it is, i didn't like it
And i don't see any "Decentralized Observatory" feature in extension options!

Whatever it is, i didn't like it
And i don't see any "Decentralized Observatory" feature in extension options!

Click to expand...

I understand being an advocate of privacy you have to be on the watch for what companys and groups are doing. That said I must say I have ALOT of faith in the EFF. As to why you don't see the option to disable Decentralized Observatory it is because it will not be included until venison 2.0

EFF and Tor developers have already started working on version 2.0 which will introduce some interesting options like decentralized SSL observatory and translations.

If you just generally don't like your ISP seeing what you do/ don't want anyone between you and who you're talking to listening in on the conversation you might as well use HTTPS. There's not much performance hit and if a site supports it I think we can assume that they can handle the extra load.

Click to expand...

Your ISP, by virtue of the fact that they do business with you, already probably has your real name, your home address, and your credit card or bank account number. They can't charge you without that stuff. No amount of encryption of the traffic you send over their wires after they've already taken down all your personal info will change what's on their servers or reduce their ability to sell that information to whoever they feel like.

If you are worried about your ISP selling data about you, IMO this is a far, far bigger concern than the possibility they might snoop all your Web requests hoping they might occasionally stumble across a form submission that contains actual salable data.

Your ISP will also know what hours you're usually online and how much traffic you generate / consume, though you could put technical measures in place to obscure those things if you cared. (Any such measures would themselves allow your ISP to detect that you are in the class of users who puts technical measures in place to obscure usage stats, which probably makes you much more interesting to certain groups.)

After all its their network. You are their customer and you have to go out through their door to get onto the internet. 99 Percent of them use NARUS

This is what NARUS do
Total Network View” decision making through the real time collection and analysis of one packet to billions of packets across multiple networks.

My ISP has loads of information on me, of course. But maybe I don't want them seeing my Wilders posts (poor example) or some other information I pass on a forum that isn't relevant to them.

You're missing the point if you think this is about "hiding" from ISPs. ISPs will always know certain information - it's kind of like talking to someone in a foreign language, they still know you're talking and they still see where you are etc. but they don't know what you're saying. That's all it is.

And there's also the fact that HTTPS prevents basic MITM attacks (depends on the situation.)

My ISP has loads of information on me, of course. But maybe I don't want them seeing my Wilders posts (poor example) or some other information I pass on a forum that isn't relevant to them.

You're missing the point if you think this is about "hiding" from ISPs. ISPs will always know certain information - it's kind of like talking to someone in a foreign language, they still know you're talking and they still see where you are etc. but they don't know what you're saying. That's all it is.

And there's also the fact that HTTPS prevents basic MITM attacks (depends on the situation.)

Read this article"In short, by seeing the 'semantics' of network traffic, service providers can see 'inside' the data, providing much more detailed insight about the use of the Internet and the perceived value of specific applications than existing technologies allow."

Click to expand...

Remember that semantics is not just the data, but rather the meaning of the data. It looks at the the data in a more comprehensive way than looking for keywords. Each NarusInsight machine does this at 2500 million bits per second, in real-time. You really wonder why BushCo didn't want to talk about this stuff? It's the biggest invasion of privacy in history by several orders of magnitude.

i think he meant that your vpn sees that your connected through a vpn, wich is true and thanks for explaining it to the rest that dont know how a vpn generally works xD
of course theres more to it than just that ,but that would go off topic it would seem xD

i think he meant that your vpn sees that your connected through a vpn, wich is true and thanks for explaining it to the rest that dont know how a vpn generally works xD
of course theres more to it than just that ,but that would go off topic it would seem xD

Click to expand...

VPN sees that you're connected through a VPN?? You mean ISP sees that that you're connected through a VPN? I don't see how, all they'd see is encrypted traffic flowing through.